imv

Privacy policy

IMV Technologies is committed to ensuring that the processing of personal data carried out as part of its activity complies with the European Regulation No. 2016/679, known as the General Data Protection Regulation (GDPR) on personal data, as well as the Data Protection Act.

In this privacy policy (the "Policy"), we explain how and why we use your personal data, what your rights are, and how to exercise them.

 

1. What is personal data?

Personal data ("Personal Data" or "Data") refers to any information relating to an identified or identifiable natural person:

directly (name, first name, email address) or

indirectly, as soon as its association with another piece of information allows you to be identified (IP address, geolocation).

 

2. What is this Privacy Policy for?

This Policy applies to all our online services and third parties.

It aims to inform:

  • Website users;
  • Prospects of IMV Technologies;
  • IMV Technologies' clients;
  • Candidates for a job at IMV Technologies.

 
3. Who collects your Data?

The Data Controller within the meaning of the European Data Protection Regulation is the company IMV Technologies, whose head office is located at ZI n°1 Est 61300 L'Aigle, France.

 

4. How do we collect your Data?

  • Data from website users:

We collect your data through our contact forms, quote request forms, internal platforms, and satisfaction surveys.
 

  • Data from clients and prospects:

We collect your data via our contact forms, request for quotes.
 

  • Data from candidates:

Depending on the case, we collect your data via:

  • Professional social networks
  • Our partner recruitment firms
  • Online recruitment platforms
  • Our recruitment space on this site

 
5. Why do we collect your Data?

Data from website users:

Purpose of the processing

Categories of data

Legal basis

Management of cookies

Navigation data (IP address)

 

Consent

For more information, you can consult our Cookie Management Policy. 

 

Data from prospects:

Purpose of the processing

Categories of data

Legal basis

Prospecting for professionals

Identity data (name, first name)

Contact data (phone number, email address, etc.)

Professional life (company name, role, etc.)

Legitimate interest

 

Data from clients:

Purpose of the processing

Categories of data

Legal basis

Management of current clients

Identity data (name, first name)

Contact data (phone number, email address, etc.)

Professional life (company name, role, etc.)

Contract execution.

 

 

Customer testimonial management

Contact data (professional email)

Identity data (image and audio via a testimonial video)

Consent

Right to use image

 

 

Data from candidates:

Purpose of the processing

Categories of data

Legal basis

Recruitment management

. Identity data (name)

.Contact data (phone number, email address, etc.)

.Professional data (CV, training)

Legitimate interest

 

6Are you required to provide your Personal Data?

Some fields in our collection forms are not mandatory. The mandatory data to be filled in are marked with an asterisk "*".

 

7. How long do we keep your Data?

We keep your Personal Data for the duration necessary for the operations for which they were collected, except when the law provides for a different retention period.

 

Persons concerned

Retention periods

Website users

 

For statistical and attendance operations, your Personal Data are kept for a maximum period of thirteen (13) months, after which they will be destroyed.
 For more information, you can consult our Cookies Policy.

Prospects

Your Data is kept for three (3) years after the last contact with THE CLIENT.

Clients

 

Your Data is kept for the duration of the service contract and for five (5) years following its end.

Your billing data is kept for ten (10) years in accordance with the provisions of the Commercial Code.
Testimonial data is retained for the duration specified in the signed authorization or until consent is withdrawn.

Candidates

 

Your data is kept for two (2) years following the last contact with THE CLIENT.

This retention period can be extended with your express consent.

 

8. Who do we share your Data with?

The processing carried out by IMV Technologies' partners is framed within the scope of agreements in which the subcontractors commit to respect the applicable laws and regulations and, more generally, all the obligations imposed on them, especially in terms of protecting the security and confidentiality of Personal Data.
Some job offers on the website are for positions located outside the European Union. If you apply for one of them, your application will be forwarded to the concerned entity.

 

9. What security measures have we taken to protect you?

We commit to implementing all necessary technical and organizational measures to comply with the protection of your Personal Data (impact analysis, audit, policy management of authorizations and accesses, application mapping).

We specifically conduct audits of our providers to ensure the implementation of security measures to guarantee the integrity, confidentiality, and availability of your Data.

Our contracts with our providers include a part dedicated to Data protection in compliance with applicable laws.


10. What are your rights?

In accordance with the Data Protection Act and subject to compliance with legal obligations imposed on IMV Technologies during its activity, each individual may exercise the following rights:

You can:

  • Right of access: Request a copy of the Data concerning you that the Data Controller possesses.
  • Right to rectification: Correct or complete inaccurate Data concerning you.
  • Right to erasure: Request the erasure of all or part of your Data. 
  • Right to object: Object to us processing your Data, including in the context of profiling activities; this request is incompatible with the processing of your contact or quote request. 
  • Right to withdrawal: Decide at any time to withdraw your consent. 
  • Right to restriction of processing: Limit the use of your Data during the processing of your request. 
  • Right to data portability: Request to retrieve part of your Data processed by IMV Technologies in a machine-readable format.

When a Data breach likely to result in a high risk to your rights and freedoms is detected, you will be informed of this breach as soon as possible.

You can issue directives concerning the conservation, erasure, and communication of your Personal Data after death in accordance with Article 85 of Law No. 78-17 of January 6, 1978.

 

11. How to exercise your rights?

These rights and directives can be exercised and addressed by writing to us:

by postal mail to the following address: IMV Technologies ZI n°1 Est 61300 L'Aigle

by electronic means: DPO dpo@imv-technologies.com

Depending on the type of request and in case of doubt about your identity, we may ask you to justify your identity upon receipt of your request.

A response will then be sent to you within 1 month following the receipt of the request. In some cases, related to the complexity of the request or the number of requests, this period may be extended by 2 months.

You can also contact the National Commission on Informatics and Liberty (CNIL), the regulatory authority responsible for enforcing personal data protection regulation in France, online at https://www.cnil.fr/fr/agir or by postal mail at the following address: National Commission on Informatics and Liberties 3 Place de Fontenoy - TSA 80715 75334 PARIS CEDEX.

 

12. Modification of this Privacy Policy

We may update this Policy by posting a new version on our Site, in which case you will be informed during your next visit to the Site.

 

13. Contact

For any questions regarding the Privacy Policy, you can contact us by the following means:

 

imv